Session Fixation Vulnerability in Ice Hrm 29.0.0 OS Allows Session Hijacking via Crafted Session Cookie

Session Fixation Vulnerability in Ice Hrm 29.0.0 OS Allows Session Hijacking via Crafted Session Cookie

CVE-2021-35046 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

A session fixation vulnerability was discovered in Ice Hrm 29.0.0 OS which allows an attacker to hijack a valid user session via a crafted session cookie.

Learn more about our User Device Pen Test.